QuickTime 7.1.6 fixes flaw, adds Final Cut Studio 2

In addition to its fix for its security update, Apple on Tuesday also released QuickTime 7.1.6 (Windows), which it said delivers numerous bug fixes, addresses a critical security issue with QuickTime for Java and includes support for Final Cut Studio 2 and Timecode and closed captioning display in QuickTime Player. Apple said the update is available for Mac OS X v10.3.9 and Mac OS X v10.4.9 as well as Windows XP SP2 and Windows 2000 SP4; the QuickTime update addresses a bug where visiting a malicious website may lead to arbitrary code execution: "An implementation issue exists in QuickTime for Java, which may allow reading or writing out of the bounds of the allocated heap. By enticing a user to visit a web page containing a maliciously-crafted Java applet, an attacker can trigger the issue which may lead to arbitrary code execution."

Apple said that the update addresses the issue by performing additional bounds checking when creating QTPointerRef objects. The bug was first reported by Dino Dai Zovi working with TippingPoint and the Zero Day Initiative, according to update documentation.

Filed under: troubleshooting

top searches

1. apple

2. iphone

3. apple TV

4. ipod

5. mac

6. BBC

7. icons

8. icon

9. macbook

10. leopard

search for more ..

RSS Feeds

Have the latest content delivered to your desktop via RSS. Use the links below to get access to a specific blog, news, or reviews feed.

MacNN -all

MacNN Reviews

MacNN Podcasts

iPodNN

Electronista

Left Lane News

See all RSS feeds...

Want To Sell Your Laptop? Any Condition - receive Top Cash. Get an instant quote. Free shipping www.CashForLaptops.com
Buy from The Apple Store, iTunes.com, Amazon.com, TechDepot, OfficeDepot, Computers4Sure, or donate.

Have your product or service listed here.

Default Comment View
External Page Links
Comment Threading View